Latest cisco ios Vulnerabilities

CVE-2023-20109
Cisco IOS and IOS XE Group Encrypted Transport VPN Out-of-Bounds Write Vulnerability
Cisco IOS=12.4\(22\)md
Cisco IOS=12.4\(22\)md1
Cisco IOS=12.4\(22\)md2
Cisco IOS=12.4\(22\)mda
Cisco IOS=12.4\(22\)mda1
Cisco IOS=12.4\(22\)mda2
and 1035 more
CVE-2023-20186
A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to bypass command autho...
Cisco IOS=12.2\(58\)ex
Cisco IOS=12.2\(58\)ey
Cisco IOS=12.2\(58\)ey1
Cisco IOS=12.2\(58\)ey2
Cisco IOS=12.2\(58\)ez
Cisco IOS=12.2\(58\)se
and 990 more
CVE-2023-20080
A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) cond...
Cisco IOS=12.2\(6\)i1
Cisco IOS=15.1\(2\)sg
Cisco IOS=15.1\(2\)sg1
Cisco IOS=15.1\(2\)sg2
Cisco IOS=15.1\(2\)sg3
Cisco IOS=15.1\(2\)sg4
and 846 more
CVE-2023-20081
A vulnerability in the IPv6 DHCP (DHCPv6) client module of Cisco Adaptive Security Appliance (ASA) Software, Cisco Firepower Threat Defense (FTD) Software, Cisco IOS Software, and Cisco IOS XE Softwar...
Cisco Adaptive Security Appliance Software=9.8.1
Cisco Adaptive Security Appliance Software=9.8.1.5
Cisco Adaptive Security Appliance Software=9.8.1.7
Cisco Adaptive Security Appliance Software=9.8.2
Cisco Adaptive Security Appliance Software=9.8.2.8
Cisco Adaptive Security Appliance Software=9.8.2.14
and 615 more
CVE-2022-20920
A vulnerability in the SSH implementation of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due...
Cisco IOS
Cisco IOS XE
Cisco IOS=3.2.0se
Cisco IOS=3.2.1se
Cisco IOS=3.2.2se
Cisco IOS=3.2.3se
and 1441 more
CVE-2022-20724
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, ex...
Cisco Cgr1000 Compute Module
Cisco IC3000 Industrial Compute Gateway
Cisco Ir510 Operating System
Cisco IOS
Cisco IOS=15.2\(5\)e1
Cisco IOS=15.2\(5\)e2c
and 425 more
CVE-2022-20761
A vulnerability in the integrated wireless access point (AP) packet processing of the Cisco 1000 Series Connected Grid Router (CGR1K) could allow an unauthenticated, adjacent attacker to cause a denia...
Cisco IOS=15.4\(1\)cg
Cisco IOS=15.4\(2\)cg
Cisco IOS=15.4\(3\)m
Cisco IOS=15.4\(3\)m1
Cisco IOS=15.4\(3\)m2
Cisco IOS=15.4\(3\)m3
and 80 more
CVE-2022-20725
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, ex...
Cisco Cgr1000 Compute Module
Cisco IC3000 Industrial Compute Gateway
Cisco Ir510 Operating System
Cisco IOS=15.2\(5\)e1
Cisco IOS=15.2\(5\)e2c
Cisco IOS=15.2\(6\)e0a
and 272 more
CVE-2022-20726
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, ex...
Cisco Cgr1000 Compute Module
Cisco IC3000 Industrial Compute Gateway
Cisco IOS
Cisco IOS=15.2\(5\)e1
Cisco IOS=15.2\(5\)e2c
Cisco IOS=15.2\(6\)e0a
and 53 more
CVE-2022-20727
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, ex...
Cisco Cgr1000 Compute Module<1.15.0.1
Cisco IC3000 Industrial Compute Gateway<1.4.1
Cisco Ir510 Operating System<6.5.9
Cisco IOS=15.2\(5\)e1
Cisco IOS=15.2\(6\)e0a
Cisco IOS=15.2\(6\)e1
and 213 more
CVE-2022-20697
Cisco IOS=15.1\(3\)svr1
Cisco IOS=15.1\(3\)svr2
Cisco IOS=15.1\(3\)svr3
Cisco IOS=15.1\(3\)svs
Cisco IOS=15.1\(3\)svs1
Cisco IOS=15.1\(3\)svt1
and 23 more
CVE-2022-20661
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently...
Cisco IOS>=15.2\(5\)ex<15.2\(7\)e5
Cisco Cdb-8p
Cisco Cdb-8u
Cisco IOS=15.2\(8\)e
Cisco Cmicr-4pc
Cisco Cmicr-4ps
and 1 more
CVE-2022-20677
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco platforms could allow an attacker to inject arbitrary commands into the underlying host operating system, ex...
Cisco IOS=17.6.1
Cisco 1100-4g Integrated Services Router
Cisco 1100-6g Integrated Services Router
Cisco 1101 Integrated Services Router
Cisco 1109 Integrated Services Router
Cisco 1111x Integrated Services Router
and 56 more
CVE-2021-34714
Cisco FXOS>=2.2<2.2.2.148
Cisco FXOS>=2.3<2.3.1.216
Cisco FXOS>=2.4<2.4.1.273
Cisco FXOS>=2.6<2.6.1.224
Cisco FXOS>=2.7<2.7.1.143
Cisco FXOS>=2.8<2.8.1.143
and 244 more
CVE-2021-34705
A vulnerability in the Voice Telephony Service Provider (VTSP) service of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass configured destination ...
Cisco IOS
Cisco IOS=12.3\(7\)xm
Cisco IOS=12.3\(7\)xr
Cisco IOS=12.3\(7\)xr1
Cisco IOS=12.3\(7\)xr2
Cisco IOS=12.3\(7\)xr3
and 1716 more
CVE-2021-34699
A vulnerability in the TrustSec CLI parser of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to an i...
Cisco IOS
Cisco IOS=12.2\(6\)i1
Cisco IOS=15.0\(1\)sy
Cisco IOS=15.0\(1\)sy1
Cisco IOS=15.0\(1\)sy2
Cisco IOS=15.0\(1\)sy3
and 1664 more
CVE-2021-34703
Cisco IOS<=16.12.3
Cisco IOS XE<=16.12.3
Cisco 1000 Integrated Services Router
Cisco 1100-4g\/6g Integrated Services Router
Cisco 1100-4p Integrated Services Router
Cisco 1100-8p Integrated Services Router
and 197 more
CVE-2021-1460
A vulnerability in the Cisco IOx Application Framework of Cisco 809 Industrial Integrated Services Routers (Industrial ISRs), Cisco 829 Industrial ISRs, Cisco CGR 1000 Compute Module, and Cisco IC3000...
Cisco IOS<15.9\(3\)m3
Cisco 809 Industrial Integrated Services Router
Cisco 829 Industrial Integrated Services Router
Cisco Cgr1000 Firmware<1.12.0.3
Cisco Cgr1000
Cisco Ic3000 Industrial Compute Gateway Firmware<1.3.2
and 1 more
CVE-2021-1392
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and the...
Cisco IOS=15.0\(1\)ey
Cisco IOS=15.0\(1\)ey1
Cisco IOS=15.0\(1\)ey2
Cisco IOS=15.1\(3\)svs
Cisco IOS=15.1\(3\)svt1
Cisco IOS=15.2\(1\)ey
and 208 more
CVE-2021-1391
A vulnerability in the dragonite debugger of Cisco IOS XE Software could allow an authenticated, local attacker to escalate from privilege level 15 to root privilege. The vulnerability is due to the p...
Cisco IOS=12.2\(6\)i1
Cisco IOS=15.0\(2\)se13a
Cisco IOS=15.1\(3\)svr1
Cisco IOS=15.1\(3\)svr2
Cisco IOS=15.1\(3\)svr3
Cisco IOS=15.1\(3\)svs
and 128 more
CVE-2021-1385
A vulnerability in the Cisco IOx application hosting environment of multiple Cisco platforms could allow an authenticated, remote attacker to conduct directory traversal attacks and read and write fil...
Cisco IOS=15.8\(3\)m2a
Cisco IOS=15.8\(3\)m3
Cisco IOS=15.8\(3\)m4
Cisco IOS=15.8\(3\)m5
Cisco IOS=15.8\(3\)m6
Cisco IOS=15.9\(3\)m
and 51 more
CVE-2021-1377
Cisco IOS=12.2\(6\)i1
Cisco IOS=15.1\(3\)svr1
Cisco IOS=15.1\(3\)svr2
Cisco IOS=15.1\(3\)svr3
Cisco IOS=15.1\(3\)svs
Cisco IOS=15.1\(3\)svs1
and 296 more
CVE-2020-3479
A vulnerability in the implementation of Multiprotocol Border Gateway Protocol (MP-BGP) for the Layer 2 VPN (L2VPN) Ethernet VPN (EVPN) address family in Cisco IOS Software and Cisco IOS XE Software c...
Cisco IOS
Cisco IOS XE
Cisco 1100 Integrated Services Router
Cisco 1101 Integrated Services Router
Cisco 1109 Integrated Services Router
Cisco 1111x Integrated Services Router
and 20 more
CVE-2020-3477
A vulnerability in the CLI parser of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker to access files from the flash: filesystem. The vulnerability is due to i...
Cisco IOS=16.3.11
Cisco 2610xm
Cisco 2611xm
Cisco 2612
Cisco 2620xm
Cisco 2621xm
and 3 more
CVE-2020-3426
A vulnerability in the implementation of the Low Power, Wide Area (LPWA) subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Se...
Cisco IOS
Cisco 1120 Connected Grid Router
Cisco 1240 Connected Grid Router
Cisco 807 Industrial Integrated Services Router
Cisco 809 Industrial Integrated Services Router
Cisco 829 Industrial Integrated Services Router
CVE-2020-3475
Multiple vulnerabilities in the web management framework of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to gain unauthorized read access to sensitive ...
Cisco IOS
Cisco 1100 Integrated Services Router
Cisco 1101 Integrated Services Router
Cisco 1109 Integrated Services Router
Cisco 1111x Integrated Services Router
Cisco 111x Integrated Services Router
and 94 more
CVE-2020-3476
A vulnerability in the CLI implementation of a specific command of Cisco IOS XE Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying host file system. T...
Cisco IOS=16.9
Cisco IOS=16.10.1
CVE-2020-3408
A vulnerability in the Split DNS feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of...
Cisco IOS=15.8\(3\)m3
Cisco IOS XE=15.8\(3\)m3
Cisco 1100-4g Integrated Services Router
Cisco 1100-4gltegb Integrated Services Router
Cisco 1100-4gltena Integrated Services Router
Cisco 1100-4p Integrated Services Router
and 123 more
CVE-2020-3409
A vulnerability in the PROFINET feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to crash and reload, resulting in ...
Cisco IOS=15.2\(7\)e
Cisco IOS XE=15.2\(7\)e
Cisco Ie-4000-16gt4g-e
Cisco Ie-4000-16t4g-e
Cisco Ie-4000-4gc4gp4g-e
Cisco Ie-4000-4gs8gp4g-e
and 31 more
CVE-2019-16009
A vulnerability in the web UI of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The vu...
Cisco IOS<16.1.1
Cisco IOS XE<16.1.1
CVE-2020-3234
A vulnerability in the virtual console authentication of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers ...
Cisco IOS=12.2\(60\)ez16
Cisco IOS=15.0\(2\)sg11a
Cisco IOS=15.3\(3\)jaa1
Cisco IOS=15.3\(3\)jpj
Cisco IOS=15.4\(1\)cg
Cisco IOS=15.4\(2\)cg
and 85 more
CVE-2020-3257
Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) t...
Cisco IOS=15.8\(3.0z\)m1
Cisco IOS=15.9
Cisco 1120 Connected Grid Router
Cisco 1240 Connected Grid Router
Cisco Ir809g-lte-ga-k9
Cisco Ir809g-lte-la-k9
and 11 more
CVE-2020-3258
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unau...
Cisco IOS=15.8\(3\)m2
Cisco IOS=15.8\(9\)
Cisco IOS=15.9
Cisco 1120
Cisco 1240
Cisco Ir809g-lte-ga-k9
and 12 more
CVE-2020-3231
A vulnerability in the 802.1X feature of Cisco Catalyst 2960-L Series Switches and Cisco Catalyst CDB-8P Switches could allow an unauthenticated, adjacent attacker to forward broadcast traffic before ...
Cisco IOS=15.2\(5\)e2
Cisco IOS=15.2\(5\)ex
Cisco IOS=15.2\(5a\)e
Cisco IOS=15.2\(5b\)e
Cisco IOS=15.2\(5c\)e
Cisco IOS=15.2\(6\)e
and 16 more
CVE-2020-3235
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software and Cisco IOS XE Software on Catalyst 4500 Series Switches could allow an authenticated, remote attacke...
Cisco IOS=12.2\(52\)sg
Cisco IOS=12.2\(53\)sg1
Cisco IOS=12.2\(53\)sg2
Cisco IOS=12.2\(53\)sg3
Cisco IOS=12.2\(53\)sg4
Cisco IOS=12.2\(53\)sg5
and 149 more
CVE-2020-3226
A vulnerability in the Session Initiation Protocol (SIP) library of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected devi...
Cisco IOS=15.0\(2\)sg11a
Cisco IOS=15.3\(3\)jaa1
Cisco IOS=15.3\(3\)jpi
Cisco IOS=15.3\(3\)jpj
Cisco IOS=15.3\(3\)m
Cisco IOS=15.3\(3\)m1
and 254 more
CVE-2020-3225
Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause ...
Cisco IOS=12.2\(44\)ex
Cisco IOS=12.2\(44\)ex1
Cisco IOS=12.2\(46\)se1
Cisco IOS=12.2\(46\)se2
Cisco IOS=12.2\(50\)se
Cisco IOS=12.2\(50\)se1
and 272 more
CVE-2020-3230
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) implementation in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to prevent IKEv2 from esta...
Cisco IOS=12.2\(6\)i1
Cisco IOS=15.0\(2\)ej
Cisco IOS=15.0\(2\)ej1
Cisco IOS=15.0\(2\)ek
Cisco IOS=15.0\(2\)ek1
Cisco IOS=15.0\(2\)ex
and 786 more
CVE-2020-3228
A vulnerability in Security Group Tag Exchange Protocol (SXP) in Cisco IOS Software, Cisco IOS XE Software, and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the affect...
Cisco IOS=12.2\(6\)i1
Cisco IOS=15.1\(1\)sy
Cisco IOS=15.1\(1\)sy1
Cisco IOS=15.1\(1\)sy2
Cisco IOS=15.1\(1\)sy3
Cisco IOS=15.1\(1\)sy4
and 484 more
CVE-2020-3210
A vulnerability in the CLI parsers of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could all...
Cisco IOS=12.2\(60\)ez16
Cisco IOS=15.0\(2\)sg11a
Cisco IOS=15.3\(3\)jaa1
Cisco IOS=15.3\(3\)jpj
Cisco IOS=15.9\(3\)m
Cisco IOS=15.9\(3\)m0a
and 4 more
CVE-2020-3217
A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthe...
Cisco IOS=12.2\(6\)i1
Cisco IOS=12.4\(25e\)jao7
Cisco IOS=15.0\(2\)sg11a
Cisco IOS=15.1\(3\)svr1
Cisco IOS=15.2\(1\)sy
Cisco IOS=15.2\(1\)sy0a
and 639 more
CVE-2020-3204
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker with privileged EXEC credentials to execute ...
Cisco IOS=12.2\(6\)i1
Cisco IOS=12.2\(33\)sre
Cisco IOS=12.2\(33\)sre0a
Cisco IOS=12.2\(33\)sre1
Cisco IOS=12.2\(33\)sre2
Cisco IOS=12.2\(33\)sre3
and 1277 more
CVE-2020-3200
A vulnerability in the Secure Shell (SSH) server code of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. The vulnerabi...
Cisco IOS=12.2\(6\)i1
Cisco IOS=12.2\(58\)ex
Cisco IOS=12.2\(58\)ey
Cisco IOS=12.2\(58\)ey1
Cisco IOS=12.2\(58\)ey2
Cisco IOS=12.2\(58\)ez
and 1192 more
CVE-2020-3199
Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) t...
Cisco IOS=12.2\(60\)ez16
Cisco IOS=15.0\(2\)sg11a
Cisco IOS=15.3\(3\)jaa1
Cisco IOS=15.3\(3\)jpj
Cisco IOS=15.4\(1\)cg
Cisco IOS=15.4\(2\)cg
and 87 more
CVE-2020-3201
A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker with privileged EXEC credentials to cause a ...
Cisco IOS=12.2\(18\)ixa
Cisco IOS=12.2\(18\)ixb
Cisco IOS=12.2\(18\)ixb1
Cisco IOS=12.2\(18\)ixb2
Cisco IOS=12.2\(18\)ixc
Cisco IOS=12.2\(18\)ixd
and 1911 more
CVE-2020-3198
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unau...
Cisco IOS=12.2\(60\)ez16
Cisco IOS=15.0\(2\)sg11a
Cisco IOS=15.3\(3\)jaa1
Cisco IOS=15.3\(3\)jpj
Cisco IOS=15.4\(1\)cg
Cisco IOS=15.4\(2\)cg
and 81 more
CVE-2020-3315
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system....
debian/snort<=2.9.7.0-5<=2.9.15.1-5<=2.9.15.1-6
Cisco Firepower Management Center=2.9.14.4
Cisco Firepower Management Center=2.9.15
Cisco Firepower Management Center=2.9.16
Cisco Firepower Threat Defense<6.6.0
Cisco IOS=15.2\(7\)e
and 18 more
CVE-2011-4661
A memory leak vulnerability exists in Cisco IOS before 15.2(1)T due to a memory leak in the HTTP PROXY Server process (aka CSCtu52820), when configured with Cisco ISR Web Security with Cisco ScanSafe ...
Cisco IOS<15.2\(1\)t
CVE-2019-12669
Cisco IOS=15.2\(3\)e
Cisco IOS=15.2\(3\)e5
Cisco IOS=16.11.1
Cisco Catalyst 3560
Cisco Catalyst 3560-e
Cisco Catalyst 3560-x
CVE-2019-12668
A vulnerability in the web framework code of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of t...
Cisco IOS=15.2\(2\)e
Cisco IOS=15.2\(2\)ea
Cisco IOS=15.2\(3\)e
Cisco IOS=15.2\(3\)ea
Cisco IOS=15.2\(4\)e
Cisco IOS=15.2\(4\)ea
and 16 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203